Content Paint
Search
Sign in
Membership

Patch Tuesday

Patch Tuesday  | Dec 13, 2023
A December Patch Tuesday recap: Azure Logic Apps, Power Platform get critical fix
A December Patch Tuesday recap: Azure Logic Apps, Power Platform get critical fix

A CVSS 9,8 bug that lets attackers spoof legitimate connectors between Microsoft/Azure services is the pick of the bunch...

 |  Patch Tuesday  | Nov 14, 2023
Three Windows zero days are under attack: Patch up.
Three Windows zero days are under attack: Patch up.

"Loaded by default on just about every version of Windows, so it provides a broad attack surface"

 |  Software  | Oct 11, 2023
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix

A CVSS 9.8, pre-auth RCE that lets an attacker execute arbitrary code without user interaction is wormable on systems where Message Queuing is enabled.

 |  Security  | Sep 12, 2023
Patch Tuesday puts the cherry on a cake of zero days
Patch Tuesday puts the cherry on a cake of zero days

From SAP, an "update that only became necessary because the Security Note was accidentally previously deleted" and from Microsoft, some strange assessments.

Software  | Aug 09, 2023
August Patch Tuesday brings 86 fixes from Microsoft
August Patch Tuesday brings 86 fixes from Microsoft

Microsoft patched 86 security flaws including multiple Critical vulnerabilities in Windows and Teams as part of this month's Patch Tuesday update

Patch Tuesday  | Jul 12, 2023
This Microsoft zero day is under active attack and there’s no patch
This Microsoft zero day is under active attack and there’s no patch

Happy Patch Tuesday: Have some critical SAP vulnerabilities affecting pretty much every internet-facing product whilst you're at it...

Security  | May 10, 2023
¡OLÈ! Microsoft patches pre-auth RCE, zero day, warns on BlackLotus bootkit
¡OLÈ! Microsoft patches pre-auth RCE, zero day, warns on BlackLotus bootkit

Although May Patch Tuesday she be but little, she is fierce: Microsoft has pushed out a modest 38 new security fixes for its monthly fix cycle , but don’t get caught napping: They include fixes for a pre-authentication remote code execution (RCE) vulnerability in Outlook, CVE-2023-29325, that requires no user

Security  | Apr 11, 2023
Patch Tuesday brings a zero day fix and a patch for a... 2013 bug?
Patch Tuesday brings a zero day fix and a patch for a... 2013 bug?

Microsoft has urged users to patch a zero day in the Windows Common Log File System (CLFS) that allows elevation by a local attacker to SYSTEM privileges and which is being exploited in the wild. CVE-2023-28252 was reported by a member of China’s DBAPPSecurity WeBin Lab and as that

Security  | Mar 14, 2023
Urgent: Microsoft 365 Apps being exploited in wild via CVSS 9.8 bug
Urgent: Microsoft 365 Apps being exploited in wild via CVSS 9.8 bug

Get domain admin by... just emailing the domain admin?

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2025 The Stack
©  2025 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.